chore(deps): update konflux references

[red-hat-konflux]

This PR contains the following updates:

Package	Change
quay.io/konflux-ci/tekton-catalog/task-buildah (source, changelog)	62f09c5 → 3fc8080
quay.io/konflux-ci/tekton-catalog/task-ecosystem-cert-preflight-checks (source, changelog)	9c30072 → 88f4fd6
quay.io/konflux-ci/tekton-catalog/task-rpms-signature-scan (source, changelog)	41720da → 237c54b
quay.io/konflux-ci/tekton-catalog/task-sast-shell-check (source, changelog)	2cd09c9 → ffc6d57
quay.io/konflux-ci/tekton-catalog/task-sast-snyk-check (source, changelog)	566753c → 8beb3a1
quay.io/konflux-ci/tekton-catalog/task-sast-unicode-check (source, changelog)	c162d9d → 7631757
quay.io/konflux-ci/tekton-catalog/task-source-build (source, changelog)	df99947 → 2f846d3

---

Configuration

📅 Schedule: Branch creation - Between 05:00 AM and 11:59 PM, only on Saturday ( * 5-23 * * 6 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

To execute skipped test pipelines write comment /ok-to-test.

---

Documentation

Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Enterprise

Run ID: 36f2b8b4-5ef9-4412-b2c4-cbafbc9a9377

📥 Commits

Reviewing files that changed from the base of the PR and between e86317b and d2d11f3.

📒 Files selected for processing (2)

• .tekton/bonfire-pull-request.yaml
• .tekton/bonfire-push.yaml

---

Summary by CodeRabbit

• Chores
  • Updated build and security scanning task versions in CI/CD pipeline configurations across pull request and push workflows.

Walkthrough

This PR updates immutable task bundle digests across two Tekton PipelineRun configurations. Seven task references are updated in the pull-request pipeline, and six are updated in the push pipeline, including buildah, rpms-signature-scan, source-build, ecosystem-cert-preflight-checks, and SAST scanning tasks. No pipeline structure or task dependencies are altered.

Changes

Tekton Task Bundle Updates

Layer / File(s)	Summary
Task bundle digest updates .tekton/bonfire-pull-request.yaml, .tekton/bonfire-push.yaml	Both Tekton PipelineRun configurations update task bundle digests for buildah, rpms-signature-scan, source-build, ecosystem-cert-preflight-checks, sast-snyk-check, sast-shell-check, and sast-unicode-check to reference newer immutable task versions.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title 'chore(deps): update konflux references' clearly describes the main change: updating Konflux-related dependencies and task bundle references across Tekton pipeline files.
Description check	✅ Passed	The description provides a detailed table of package updates with specific version changes, source links, and changelogs, directly relating to the Tekton YAML file modifications.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch konflux/references/master

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}